├── .github ├── ISSUE_TEMPLATE │ └── request.md ├── dependabot.yaml ├── funding.yaml ├── pull_request_template.md └── workflows │ ├── ci.yaml │ ├── housekeeping.yaml │ └── validate-owasp-metadata.yaml ├── .gitignore ├── .lycheeignore ├── .markdownlint.yaml ├── .spellcheck.yaml ├── .wordlist.txt ├── 404.html ├── Gemfile ├── README.md ├── _config.yml ├── _data ├── docs-1.yaml └── docs-2.yaml ├── _includes ├── banner.html ├── breadcrumb.html └── navigation.html ├── _layouts └── redirected.html ├── assets ├── images │ ├── cupcake-256x256.png │ └── itx-logo.png └── schemas │ ├── owasp.threat-dragon.schema.V1.json │ ├── owasp.threat-dragon.schema.V2.json │ └── threat.model.format.schema.json ├── code_of_conduct.md ├── contributing.md ├── docs-1 ├── about.md ├── api.md ├── cli.md ├── contributing.md ├── credits.md ├── downloads.md ├── getting-started.md ├── info.md ├── install │ ├── info.md │ ├── install-desktop.md │ ├── install-webapp.md │ ├── install.md │ └── setup-env.md ├── introduction.md ├── threat-generation.md ├── threat-model-diagrams.md └── toc.md ├── docs-2 ├── about.md ├── credits.md ├── development │ ├── api.md │ ├── contributing.md │ ├── environment.md │ ├── info.md │ ├── internationalization.md │ ├── local-development.md │ ├── schema.md │ └── testing │ │ ├── actions.md │ │ ├── adhoc.md │ │ ├── e2e.md │ │ ├── info.md │ │ └── unit.md ├── info.md ├── introduction.md ├── toc.md ├── trust │ ├── container.md │ ├── dast.md │ ├── dependencies.md │ ├── incidents.md │ ├── info.md │ └── sast.md └── usage │ ├── config │ ├── bitbucket.md │ ├── environment.md │ ├── github.md │ ├── gitlab.md │ ├── google.md │ ├── info.md │ └── local.md │ ├── info.md │ ├── install │ ├── desktop.md │ ├── docker.md │ ├── info.md │ ├── installation.md │ └── web.md │ └── modeling │ ├── diagrams.md │ ├── getting-started.md │ ├── info.md │ ├── threat-categories.md │ └── threats.md ├── index.md ├── info.md ├── leaders.md ├── license.txt ├── project.owasp.yaml ├── security.md ├── tab_faqs.md ├── tab_releases.md ├── tab_roadmap.md └── tab_tmf.md /.github/ISSUE_TEMPLATE/request.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.github/ISSUE_TEMPLATE/request.md -------------------------------------------------------------------------------- /.github/dependabot.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.github/dependabot.yaml -------------------------------------------------------------------------------- /.github/funding.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.github/funding.yaml -------------------------------------------------------------------------------- /.github/pull_request_template.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.github/pull_request_template.md -------------------------------------------------------------------------------- /.github/workflows/ci.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.github/workflows/ci.yaml -------------------------------------------------------------------------------- /.github/workflows/housekeeping.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.github/workflows/housekeeping.yaml -------------------------------------------------------------------------------- /.github/workflows/validate-owasp-metadata.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.github/workflows/validate-owasp-metadata.yaml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.gitignore -------------------------------------------------------------------------------- /.lycheeignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.lycheeignore -------------------------------------------------------------------------------- /.markdownlint.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.markdownlint.yaml -------------------------------------------------------------------------------- /.spellcheck.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.spellcheck.yaml -------------------------------------------------------------------------------- /.wordlist.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/.wordlist.txt -------------------------------------------------------------------------------- /404.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/404.html -------------------------------------------------------------------------------- /Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/Gemfile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/README.md -------------------------------------------------------------------------------- /_config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/_config.yml -------------------------------------------------------------------------------- /_data/docs-1.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/_data/docs-1.yaml -------------------------------------------------------------------------------- /_data/docs-2.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/_data/docs-2.yaml -------------------------------------------------------------------------------- /_includes/banner.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/_includes/banner.html -------------------------------------------------------------------------------- /_includes/breadcrumb.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/_includes/breadcrumb.html -------------------------------------------------------------------------------- /_includes/navigation.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/_includes/navigation.html -------------------------------------------------------------------------------- /_layouts/redirected.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/_layouts/redirected.html -------------------------------------------------------------------------------- /assets/images/cupcake-256x256.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/assets/images/cupcake-256x256.png -------------------------------------------------------------------------------- /assets/images/itx-logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/assets/images/itx-logo.png -------------------------------------------------------------------------------- /assets/schemas/owasp.threat-dragon.schema.V1.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/assets/schemas/owasp.threat-dragon.schema.V1.json -------------------------------------------------------------------------------- /assets/schemas/owasp.threat-dragon.schema.V2.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/assets/schemas/owasp.threat-dragon.schema.V2.json -------------------------------------------------------------------------------- /assets/schemas/threat.model.format.schema.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/assets/schemas/threat.model.format.schema.json -------------------------------------------------------------------------------- /code_of_conduct.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/code_of_conduct.md -------------------------------------------------------------------------------- /contributing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/contributing.md -------------------------------------------------------------------------------- /docs-1/about.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/about.md -------------------------------------------------------------------------------- /docs-1/api.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/api.md -------------------------------------------------------------------------------- /docs-1/cli.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/cli.md -------------------------------------------------------------------------------- /docs-1/contributing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/contributing.md -------------------------------------------------------------------------------- /docs-1/credits.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/credits.md -------------------------------------------------------------------------------- /docs-1/downloads.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/downloads.md -------------------------------------------------------------------------------- /docs-1/getting-started.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/getting-started.md -------------------------------------------------------------------------------- /docs-1/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/info.md -------------------------------------------------------------------------------- /docs-1/install/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/install/info.md -------------------------------------------------------------------------------- /docs-1/install/install-desktop.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/install/install-desktop.md -------------------------------------------------------------------------------- /docs-1/install/install-webapp.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/install/install-webapp.md -------------------------------------------------------------------------------- /docs-1/install/install.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/install/install.md -------------------------------------------------------------------------------- /docs-1/install/setup-env.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/install/setup-env.md -------------------------------------------------------------------------------- /docs-1/introduction.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/introduction.md -------------------------------------------------------------------------------- /docs-1/threat-generation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/threat-generation.md -------------------------------------------------------------------------------- /docs-1/threat-model-diagrams.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/threat-model-diagrams.md -------------------------------------------------------------------------------- /docs-1/toc.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-1/toc.md -------------------------------------------------------------------------------- /docs-2/about.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/about.md -------------------------------------------------------------------------------- /docs-2/credits.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/credits.md -------------------------------------------------------------------------------- /docs-2/development/api.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/api.md -------------------------------------------------------------------------------- /docs-2/development/contributing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/contributing.md -------------------------------------------------------------------------------- /docs-2/development/environment.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/environment.md -------------------------------------------------------------------------------- /docs-2/development/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/info.md -------------------------------------------------------------------------------- /docs-2/development/internationalization.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/internationalization.md -------------------------------------------------------------------------------- /docs-2/development/local-development.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/local-development.md -------------------------------------------------------------------------------- /docs-2/development/schema.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/schema.md -------------------------------------------------------------------------------- /docs-2/development/testing/actions.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/testing/actions.md -------------------------------------------------------------------------------- /docs-2/development/testing/adhoc.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/testing/adhoc.md -------------------------------------------------------------------------------- /docs-2/development/testing/e2e.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/testing/e2e.md -------------------------------------------------------------------------------- /docs-2/development/testing/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/testing/info.md -------------------------------------------------------------------------------- /docs-2/development/testing/unit.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/development/testing/unit.md -------------------------------------------------------------------------------- /docs-2/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/info.md -------------------------------------------------------------------------------- /docs-2/introduction.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/introduction.md -------------------------------------------------------------------------------- /docs-2/toc.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/toc.md -------------------------------------------------------------------------------- /docs-2/trust/container.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/trust/container.md -------------------------------------------------------------------------------- /docs-2/trust/dast.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/trust/dast.md -------------------------------------------------------------------------------- /docs-2/trust/dependencies.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/trust/dependencies.md -------------------------------------------------------------------------------- /docs-2/trust/incidents.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/trust/incidents.md -------------------------------------------------------------------------------- /docs-2/trust/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/trust/info.md -------------------------------------------------------------------------------- /docs-2/trust/sast.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/trust/sast.md -------------------------------------------------------------------------------- /docs-2/usage/config/bitbucket.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/config/bitbucket.md -------------------------------------------------------------------------------- /docs-2/usage/config/environment.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/config/environment.md -------------------------------------------------------------------------------- /docs-2/usage/config/github.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/config/github.md -------------------------------------------------------------------------------- /docs-2/usage/config/gitlab.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/config/gitlab.md -------------------------------------------------------------------------------- /docs-2/usage/config/google.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/config/google.md -------------------------------------------------------------------------------- /docs-2/usage/config/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/config/info.md -------------------------------------------------------------------------------- /docs-2/usage/config/local.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/config/local.md -------------------------------------------------------------------------------- /docs-2/usage/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/info.md -------------------------------------------------------------------------------- /docs-2/usage/install/desktop.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/install/desktop.md -------------------------------------------------------------------------------- /docs-2/usage/install/docker.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/install/docker.md -------------------------------------------------------------------------------- /docs-2/usage/install/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/install/info.md -------------------------------------------------------------------------------- /docs-2/usage/install/installation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/install/installation.md -------------------------------------------------------------------------------- /docs-2/usage/install/web.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/install/web.md -------------------------------------------------------------------------------- /docs-2/usage/modeling/diagrams.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/modeling/diagrams.md -------------------------------------------------------------------------------- /docs-2/usage/modeling/getting-started.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/modeling/getting-started.md -------------------------------------------------------------------------------- /docs-2/usage/modeling/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/modeling/info.md -------------------------------------------------------------------------------- /docs-2/usage/modeling/threat-categories.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/modeling/threat-categories.md -------------------------------------------------------------------------------- /docs-2/usage/modeling/threats.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/docs-2/usage/modeling/threats.md -------------------------------------------------------------------------------- /index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/index.md -------------------------------------------------------------------------------- /info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/info.md -------------------------------------------------------------------------------- /leaders.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/leaders.md -------------------------------------------------------------------------------- /license.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/license.txt -------------------------------------------------------------------------------- /project.owasp.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/project.owasp.yaml -------------------------------------------------------------------------------- /security.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/security.md -------------------------------------------------------------------------------- /tab_faqs.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/tab_faqs.md -------------------------------------------------------------------------------- /tab_releases.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/tab_releases.md -------------------------------------------------------------------------------- /tab_roadmap.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/tab_roadmap.md -------------------------------------------------------------------------------- /tab_tmf.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OWASP/www-project-threat-dragon/HEAD/tab_tmf.md --------------------------------------------------------------------------------